Ubuntu
aptdaemon package

aptdaemon debconf-communicate should be running as root

Bug #1599981 reported by Mathieu Trudel-Lapierre
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
aptdaemon (Ubuntu)
New
Undecided
Unassigned

Bug Description

aptdaemon runs as the session user. It needs to spawn debconf-communicate to interact with the user when packages have debconf questions; which often needs to be done as root (or otherwise have sufficient privileges) since packages may want to prompt for passwords, which use a different, more secure debconf database than the main config one.

aptdaemon probably should be spawning debconf-communicate as root, at the cost of prompting the user for a password when debconf access is necessary.

This became readily apparent with https://bugs.launchpad.net/ubuntu/+source/shim-signed/+bug/1599051; updating to a new shim which requires inputting a Secure Boot password to disable shim validation would consistently fail due to being unable to access password.dat (you would see errors on the command line when update-manager is started in a terminal)

Revision history for this message
Steve Langasek (vorlon) wrote :

There should not be any additional password prompting as part of spawning debconf-communicate as root. This should be encompassed by the existing security policy for running apt itself.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.